Collect the result of the CIS scan in the artifacts of a deployment

Summary

Collect the results of the scan triggered automatically by cis-operator, and add it to the cluster dump performed at the end of a deployment in CI and added to the artifact.

related references

Details

Full scan results obtained by a kubectl get clusterscanreports -o yaml

Add and run a script developed by @pseite to produce a readable output of the full scan results:

report-ascii.py
parse-report.sh

Scan summary obtained by a get clusterscans -o yaml

Need to keep permanently the scan results generated when a release is tagged, to be able to insert it together with a release note

Edited Dec 13, 2023 by Alain Thioliere